Threat Search: 

ThreatExpert's Statistics for FakeAlert-DA [McAfee]:

FakeAlert-DA [McAfee] is also known as:
Threat AliasNumber of Incidents
Packed.Generic.233 [Symantec]65
Mal/EncPk-IV [Sophos]44
Trojan-Downloader.Win32.FakeRean [Ikarus]43
Mal/EncPk-IF [Sophos]34
Win32/IRCBot.worm.variant [AhnLab]27
Trojan:Win32/Alureon.BK [Microsoft]21
Win-Trojan/Xema.variant [AhnLab]20
Infostealer.Banker.C [Symantec]19
Trojan-Downloader.Win32.Small [Ikarus]17
TrojanDownloader:Win32/FakeRean [Microsoft]17
TrojanDownloader:Win32/FakeRean.gen!C [Microsoft]17
Hoax.Win32.Renos [Ikarus]15
Hoax.Win32.Renos.vchc [Kaspersky Lab]15
Trojan Horse [Symantec]15
Trojan-PSW.Banker [PC Tools]15
Mal/EncPk-IF, Mal/EncPk-HH [Sophos]14
PWS:Win32/Zbot.gen!B [Microsoft]14
Packed.Generic.218 [Symantec]13
Mal/Generic-A [Sophos]12
Packed.Win32.Tdss.x [Kaspersky Lab]12
Trojan.Win32.Winwebsec [Ikarus]12
Trojan-Downloader.Win32.Small.jmp [Kaspersky Lab]12
Trojan:Win32/Sisproc [Microsoft]9
Win-Trojan/Downloader.19456.LR [AhnLab]9
Trojan:Win32/Alureon.gen!J [Microsoft]7
Downloader.MisleadApp [Symantec]6
HeurEngine.MaliciousPacker [PC Tools]6
PWS:Win32/Zbot.PG [Microsoft]6
Trojan:Win32/Ertfor.A [Microsoft]6
Trojan-Downloader.Win32.FraudLoad.eyw [Kaspersky Lab]6
Mal/EncPk-IV, Mal/EncPk-IF [Sophos]5
PWS:Win32/Zbot.gen!R [Microsoft]5
Trojan-Spy.Win32.Zbot [Ikarus]5
Win-Trojan/Fakealert.238642 [AhnLab]5
Mal/FakeAV-BX, Mal/EncPk-IF, Mal/EncPk-HH [Sophos]4
Mal/FakeAV-BX, Mal/FakeAV-BT, Mal/EncPk-IF [Sophos]4
Virus.Packed.Win32.Tdss [Ikarus]4
Mal/EncPk-HH [Sophos]3
Mal/FakeAV-BX, Mal/FakeAV-BT, Mal/EncPk-IF, Mal/EncPk-HH [Sophos]3
Trojan.Win32.Wantvi [Ikarus]3
Trojan-Downloader.Win32.Wzhyk.ab [Kaspersky Lab]3
Trojan-Downloader.Win32.Wzhyk.ah [Kaspersky Lab]3
Mal/EncPk-HP [Sophos]2
Mal/EncPk-IF, Mal/Basine-C [Sophos]2
Mal/EncPk-IV, Mal/EncPk-IF, Mal/EncPk-HH [Sophos]2
Packed.Win32.Krap.t [Kaspersky Lab]2
PWS:Win32/Zbot.gen!W [Microsoft]2
PWS:Win32/Zbot.M [Microsoft]2
Tool:Win32/Dnschanger.K [Microsoft]2
Troj/Agent-JEX [Sophos]2
Trojan.Adclicker [PC Tools]2
Trojan.Adclicker [Symantec]2
Trojan.Win32.Agent.bugg [Kaspersky Lab]2
Trojan:Win32/Winwebsec [Microsoft]2
Trojan-Downloader.Win32.FraudLoad.ezw [Kaspersky Lab]2
Trojan-Downloader.Win32.Renos [Ikarus]2
Trojan-Downloader.Win32.Wzhyk.c [Kaspersky Lab]2
Trojan-Downloader.Win32.Wzhyk.m [Kaspersky Lab]2
Trojan-Downloader.Wzhyk!sd6 [PC Tools]2
Trojan-Dropper.Agent [Ikarus]2
Trojan-Dropper.Win32.Agent.alfn [Kaspersky Lab]2
Trojan-Spy.Win32.Zbot.vag [Kaspersky Lab]2
Trojan-Spy.Win32.Zbot.vne [Kaspersky Lab]2
Trojan-Spy.Win32.Zbot.vsd [Kaspersky Lab]2
Trojan-Spy.Win32.Zbot.vvi [Kaspersky Lab]2
Trojan-Spy.Win32.Zbot.whz [Kaspersky Lab]2
Trojan-Spy.Win32.Zbot.wxb [Kaspersky Lab]2
Trojan-Spy.Win32.Zbot.wyi [Kaspersky Lab]2
Trojan-Spy.Win32.Zbot.wyu [Kaspersky Lab]2
Trojan-Spy.Win32.Zbot.yiq [Kaspersky Lab]2
TrojanSpy:Win32/Zbot.gen!C [Microsoft]2
VirTool:Win32/Delf.O [Microsoft]2
Win-Trojan/Zbot.67072.D [AhnLab]2
Backdoor.Win32.IRCBot.mhg [Kaspersky Lab]1
Backdoor.Win32.TDSS.kh [Kaspersky Lab]1
Backdoor.Win32.UltimateDefender.htd [Kaspersky Lab]1
Backdoor.Win32.UltimateDefender.ieg [Kaspersky Lab]1
Downloader [Symantec]1
Dropper/Agent.46454 [AhnLab]1
Dropper/Agent.76410 [AhnLab]1
Generic FakeAlert.d!gen [McAfee]1
Mal/Basine-C [Sophos]1
Mal/Basine-C, Mal/EncPk-IF, Mal/EncPk-IV, Mal/EncPk-HH [Sophos]1
Mal/Behav-314, Mal/Fakecor-B, Mal/EncPk-IF, Mal/EncPk-HH [Sophos]1
Mal/EncPk-HG, Mal/Zlob-G [Sophos]1
Mal/EncPk-IV, Mal/Basine-C [Sophos]1
Mal/FakeAV-AD, Mal/EncPk-IV [Sophos]1
Mal/FakeAV-BT, Mal/FakeAV-BX, Mal/EncPk-IF, Mal/EncPk-HH [Sophos]1
Mal/Generic-A, Mal/FakeAV-BT, Mal/FakeAV-BX, Mal/EncPk-IF, Mal/EncPk-HH [Sophos]1
Mal/TDSSPk-M [Sophos]1
PWS.Win32 [Ikarus]1
Suspicious.Graybird.1 [Symantec]1
Troj/Pushdo-Gen, Mal/EncPk-IF, Mal/EncPk-HH [Sophos]1
Trojan.FakeAV [PC Tools]1
Trojan.FakeAV [Symantec]1
Trojan.Generic [PC Tools]1
Trojan.Win32.Agent [Ikarus]1
Trojan.Win32.Crypt.bdb [Kaspersky Lab]1
Trojan.Win32.FakeRean [Ikarus]1
Trojan.Win32.FraudPack.odm [Kaspersky Lab]1

FakeAlert-DA [McAfee] has the following possible country of origin:
OriginNumber of Incidents
Russian Federation6

FakeAlert-DA [McAfee] is known to be created as:
%CommonAppData%\13816404\13816404.exe
%System%\admparser.exe
%System%\appendr.exe
%System%\braviax.exe
%System%\ntos.exe
%System%\sdra64.exe
%Temp%\6_ldr.exe
%Temp%\a01ohct6.exe
%Temp%\a02m9azk.exe
%Temp%\a0h7pens.exe
%Temp%\a0n7gvpra9.exe
%Temp%\a0sr71q.exe
%Temp%\a1cv9.exe
%Temp%\a1gzxczh.exe
%Temp%\a203ltfckf.exe
%Temp%\a2mnq2qcz.exe
%Temp%\a2v10.exe
%Temp%\a3mahork.exe
%Temp%\a41lg7xv.exe
%Temp%\a4k5tcq.exe
%Temp%\a4tkvry6x.exe
%Temp%\a5fp8.exe
%Temp%\a5l6z84.exe
%Temp%\a5vrg.exe
%Temp%\a74x8zrs1.exe
%Temp%\a8ayugq7.exe
%Temp%\a8jbr.exe
%Temp%\a8psi32.exe
%Temp%\a9h6krz577.exe
%Temp%\a9lkhx.exe
%Temp%\a9nnur.exe
%Temp%\a9zkz.exe
%Temp%\ab9g9hu.exe
%Temp%\ad8vrk.exe
%Temp%\adth7sl4.exe
%Temp%\ae74zi.exe
%Temp%\af6emyve66.exe
%Temp%\ag2a9.exe
%Temp%\ahvbjn8ki.exe
%Temp%\aj3runy.exe
%Temp%\ajhfifdfe.exe
%Temp%\alfabr.exe
%Temp%\alfaplay.exe
%Temp%\alfaplayer.exe
%Temp%\alrra.exe
%Temp%\amdu4gy5g.exe
%Temp%\amjuv.exe
%Temp%\an78gm4.exe
%Temp%\an99r.exe
%Temp%\ani86.exe
%Temp%\aq723ui3b5.exe
%Temp%\aqh41wrq.exe
%Temp%\aqv5fiomst.exe
%Temp%\armzk4.exe
%Temp%\as0hbxt.exe
%Temp%\aspiyjo.exe
%Temp%\asz5kwe9fk.exe
%Temp%\au4l66r.exe
%Temp%\au9jfufq9.exe
%Temp%\auixpmzdw4.exe
%Temp%\avqmtsnhu.exe
%Temp%\avzl8v5s0.exe
%Temp%\awdywgopwj.exe
%Temp%\awggkjnk.exe
%Temp%\awj0ujco6.exe
%Temp%\awriwzbdh.exe
%Temp%\ay39yos8.exe
%Temp%\ay7ufh.exe
%Temp%\ay9xxj7r.exe
%Temp%\az123vlf.exe
%Temp%\azay3yld.exe
%Temp%\azc1g9q.exe
%Temp%\azrfh.exe
%Temp%\azzzqkga.exe
%Temp%\b0c0bbj.exe
%Temp%\b0rsgyk8.exe
%Temp%\b12dogsqd.exe
%Temp%\b1n73k6blq.exe
%Temp%\b23xuv6c2.exe
%Temp%\b2eehyv4jt.exe
%Temp%\b2fopizlh.exe
%Temp%\b2uhhndgrf.exe
%Temp%\b3j4i.exe
%Temp%\b3l5tpduu.exe
%Temp%\b3ypnb.exe
%Temp%\b49ysiy74e.exe
%Temp%\b4adike6.exe
%Temp%\b4e372vz.exe
%Temp%\b4fhmv8fa.exe
%Temp%\b4ld83.exe
%Temp%\b4yfy.exe
%Temp%\b588b8d.exe
%Temp%\b5njzc.exe
%Temp%\b5o0ra.exe
%Temp%\b5wk0cznv.exe
%Temp%\b66rc1b8l.exe
%Temp%\b6aj8o.exe
%Temp%\b6bcuff.exe
%Temp%\b6oy20.exe
%Temp%\b6pwdy.exe
Notes:
  • %CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).